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Amendments to the Claims 

This listing of claims will replace all prior versions, and listings, of claims in the 
application. 



retentio n for an electronic document , comprising: 

(a) assigning a document retention pohcy to the electronic document, 
the document retention poHcy being based on a future event that is unscheduled; 
and 

(b) cryptographically associatin g, using a cryptographic key, the 
document retention policy with the electronic document. 

2. (Currently amended) The method as recited in claim 1, further 
comprising: 

(e) determining whether the future event has occurred; and 

(d) cryptographically preventing access to the electronic document in 

accordance with the document retention policy based on the occurrence of the 

future event. 

3. (Currently amended) The method as recited in claim 2, wherei n: step (c) 
the determining is periodically p erforme d periodically . 



1. 



(Currently amended) A method of [[providing]] electronic document 
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4. (Currently amended) The method as recited in claim 2, wherein-=- 

the determining is performed by comprises interacting with a network accessible 

resource. 



5. (Currently amended) The method as recited in claim 2, whereir 
the determining comprises is performed by interacting with a web accessible resource. 

6. (Currently amended) The method as recited in claim 5, wherei n step (c) 
the determining comprises: 

supplying a future event description of the future event to the web 
accessible resource; and 

determining, at the web accessible resource, whether the future event has 
occurred. 

7. (Previously Presented) The method as recited in claim 6, wherein said 
suppljdng is achieved by a universal resource locator associated with the future event 
description. 

8. (Currently amended) The method as recited in claim 5, wherein step (c) 
the determining comprises: 

suppljdng the future event description to a contract management system; 

and 

determining, at the contract management system, whether the future event 
has occurred. 
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9. (Currently amended) The method as recited in claim 1, wherein[[:]] 
st e p (b) utilizes a cryptographic key to associate the docimient retention 

policy, and 

the document retention policy specifies a document retention period based 
on the future event. 

10. (Previously Presented) The method as recited in claim 9, wherein the 
document retention policy specifies a document retention period that expires a 
predetermined period of time after the occurrence of the future event. 

11. (Currently amended) The method as recited in claim 9, further 
comprising: 

{e)-deactivating the cryptographic key in response to determining that 
when a document retention period has expired, thereby preventing further access 
to the electronic document. 

12. (Currently amended) The method as recited in claim 1 1 , further 
comprising: 

(e)-permitting the deactivating step (c) to be overridden so that the 
electronic document can remain accessible even after the document retention 
period. 
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13. (Previously Presented) A method for restricting access to an electronic 
document, said method comprising: 

identifying an electronic document to be secured, the electronic document 
having at least a data portion that contains data; 
obtaining a docimient key; 

encrypting the data portion of the electronic document using the 
docxmient key to produce an encrypted data portion; 

obtaining a retention access key, the retention access key being used to 
enforce a document retention policy on the electronic document; 

encrypting the document key using the retention access key to produce an 
encrypted document key; 

forming a secured electronic document from at least the encrypted data 
portion and the encrypted document key; and 

storing the secured electronic document. 

14. (Previously Presented) The method as recited in claim 13, wherein the 
retention access key is a public retention access key. 

15. (Previously Presented) The method as recited in claim 13, wherein the 
document retention policy is dependent on a future event that is presently unscheduled, 
and the retention access key is used to enforce the document retention policy on the 
electronic document. 
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16. (Previously Presented) The method as recited in claim 15, wherein the 
retention access key is subsequently available from a remote key store only so long as a 
document retention period of the document retention policy has not been exceeded. 

17. (Previously Presented) The method as recited in claim 16, wherein the 
document retention period is a predetermined period of time after the occurrence of the 
future event. 

18. (Previously Presented) The method as recited in claim 17, wherein said 
method further comprises: 

extending the predetermined period of time after the occurrence of the 
fiiture event. 

19. (Currently amended) The method as recited in claim [[15]] 16, wherein 
said method is performed on a client machine that operatively receives the retention 
access key from the remote key store over a network. 

20. (Original) A method for accessing a secured electronic document by a 
requestor, the secured electronic document having at least a header portion and a data 
portion, said method comprising: 

obtaining a retention access key, the retention access key being used to 
enforce a document retention policy on the electronic document; 

obtaining an encrypted document key from the header portion of the 
secured electronic document; 
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decrypting the encrypted document key using the retention access key to 
produce a document key; 

decrypting an encrypted data portion of the secured electronic document 
using the document key to produce a data portion; and 

supplying the data portion to the requestor, 

21 . (Previously Presented) The method as recited in claim 20, wherein the 
retention access key is identified by an indicator within a header portion of the secured 
electronic document. 

22. (Previously Presented) The method as recited in claim 20, wherein the 
retention access key is a private retention access key. 

23. (Currently amended) The method as recited in claim 20, wherein, if 



retention access key b e ing obtained from a serve r, wherein the server determines whether 
the retention access key is pemiitted to be provided to the requestor based on the 
document retention policy . 

24. (Previously Presented) The method as recited in claim 20, wherein the 
document retention policy is dependent on a future event that is presently unscheduled, 
and the retention access key is used to enforce the document retention policy on the 
electronic document. 




-the obtaining a retention access key comprises obtaining obtains the 
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25. (Previously Presented) The method as recited in claim 20, wherein the 
retention access key is available only so long as a document retention period of the 
document retention policy has not been exceeded. 

26. (Previously Presented) The method as recited in claim 25, wherein the 
document retention period is a predetermined period of time after the occurrence of the 
future event. 

27. (Previously Presented) The method as recited in claim 20, wherein the 
retention access key is available from a remote key store only so long as a document 
retention period of the document retention policy has not been exceeded. 

28. (Previously Presented) The method as recited in claim 20, wherein the 
retention access key is available only so long as a document retention period of the 
document retention policy has not been exceeded, the document retention period can be 
extended to permit extended access to the electronic document. 

29. (Currently amended) A method for distributing cryptographic keys used 
in a file security system, said method comprising: 

receiving a request for a document retention key that is necessary to gain 
access to a cryptographically secured electronic document; 

identifying a document retention period associated with the document 
retention key, the document retention period being dependent on a future event 
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that was unscheduled when the document retention period was associated with 
the electronic document; 

determining whether the document retention period associated with the 
document retention key has been exceeded; and 

refusing to distribute the document retention key in response to tihte 
roqucGt when said determining indicates that the document retention period for 
the electronic document has been exceeded. 

30. (Previously Presented) The method as recited in claim 29, wherein the 
document retention period is a predetermined period of time after the occurrence of the 
future event. 

3 1 . (Previously Presented) The method as recited in claim 29, wherein said 
method is performed at a server, and wherein the request for the document retention key 
is from a client module that is connectable to the server via a network. 

32. (Previously Presented) The method as recited in claim 29, wherein the 
document retention period can be extended to permit extended access to the electronic 
docimient. 

33. (Original) A file security system for restricting access to electronic files, 
said file security system comprising: 
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a key store that stores a plurality of cryptographic key pairs, each of the 
cryptographic key pairs including a pubhc key and a private key, at least one of 



cryptographic key pairs pertaining to a retention pohcy, the retention 
policy being dependent on a future event; and 

an access manager operatively connected to said key store, said access 
manager determines whether the private key of the at least one of the 
cryptographic key pairs pertaining to the retention policy is permitted to be 
provided to a requestor based on whether the future event has occurred, 

wherein the requestor requires the private key of the at least one of the 
cryptographic key pairs pertaining to the retention policy to access a secured 
electronic file, and wherein the secured electronic file was previously secured 
using the public key of the at least one of the cryptographic key pairs pertaining 
to the retention policy, and at the time the electronic file was so secured, the 
future event was unscheduled. 

34. (Previously Presented) The file security system as recited in claim 33, 
wherein said access manager prevents the private key of the at least one of the 
cryptographic key pairs pertaining to the predetermined time from being provided to the 
requestor after a predetermined retention period following the occurrence of the future 
event. 



the 



Atty. Dkt. No. 2222.5500000 



- 11 - 

Reply to Office Action of September 30, 2009 



Satyajit NATH 
Appl. No. 10/815,251 



35. (Previously Presented) The file security system as recited in claim 33, 
wherein the requestor is a client module that operatively connects to said access manager 
over a network. 

36. (Currently amended) The file security system as recited in claim 33, 
wherein said file security system further comprises: 

at least one client module , said cli e nt module assisting ar^iser^configured 
to assist i n selecting the retention policy[[,]] and secure oaid client module 
securing the electronic file using the public key of the at least one of the 
cryptographic key pairs pertaining to the retention policy so as to 
cryptographically impose the retention policy, 

37. (Previously Presented) The file security system as recited in claim 33, 
wherein said file security system fiirther comprises: 

at least one client module, said client module assisting with unsecuring 
the secured electronic file by acquiring the private key of the at least one of the 
cryptographic key pairs that pertains to the retention policy firom said key store if 
permitted by said access manager, and then unsecuring the secured electronic file 
using the private key of the at least one of the cryptographic key pairs that 
pertains to the retention policy. 

38. (Currently amended) A tcingible computer readable medium including at 
l e ast computer program code for having instructions stored thereon for p roviding data 
retention for electronic data, said computer readable medium the instructions comprising: 
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instructions to assign computer program code for assigning a data 
retention policy to the electronic data, the data retention policy being based on a 
future event that is unscheduled; and 

instructions to crvptographicallv associate, using a cryptographic key, 
computer program codo for cryptographically associating the data retention 
policy with the electronic data. 

39. (Currently amended) The computer readable medium as recited in claim 

38, wherein said computer readabl e m e dium the instructions further compris e comprises : 

instructions to cryptographically prevent computer program codo for 
cryptographically pr e venting access to the electronic data in accordance with the 
data retention policy based on the occurrence of the future event. 

40. (Previously presented) The computer readable medium as recited in claim 

39, wherein the electronic data is an electronic file. 

41. (Previously presented) The computer readable medium as recited in claim 
39, wherein the electronic data is an electronic document. 

42. (Currently amended) The computer readable mediimi as recited in claim 
38 wherein[[:]] 

said computer program code for associating op e rates to utilize a 
cryptographic key to associate the data retention policy, and 
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the data retention policy specifies a data retention period based on the 

future event. 



43. (Currently amended) The computer readable medium as recited in claim 
42 wherein: 

the data retention poHcy specifies a data retention period that expires a 
predetermined period of time after the occurrence of the fiiture event, and 
said computer readabl e medium the instructions further 

instructions to determine computer program cod e for d e t e rmining whether 
the data retention period has expired; and 

instructions to deactivate computer program code for deactivating the 
cryptographic key when it is determi ned in response to determining that the data 
retention period has expired, thereby preventing further access to the electronic data. 



44. (Ciurently amended) The computer readable medium as recited in claim 
43, wherein said computer readable medium the instructions further compris e compnGes 
instructions to permit deactivation of the cryptographic key computer 
program code for pemiitting said computer program cod e for deactivating to be 
overridden so that the electronic data can remain accessible even after the data 
retention period. 



Atty. Dkt. No. 2222.5500000 



- 14- SatyajitNATH 
Reply to Office Action of September 30, 2009 Appl. No. 1 0/8 1 5,25 1 

45. (New) The method as recited in claim 4, wherein the determining 
comprises: 

supplying a future event description of the future event to the network 
accessible resource; and 

determining, at the network accessible resource, whether the future event 
has occurred. 

46. (New) The method as recited in claim 16, wherein said method is 
performed on a server that operatively receives the retention access key jfrom the remote 
key store over a network. 
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